Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/kSZKbgpr1Q7JpWN6kfF_D1svTfY.roa
File: kSZKbgpr1Q7JpWN6kfF_D1svTfY.roa (raw, json)
Hash identifier: ozpWFkq7iblHbQkCrTd0ArEAKhkMFr8HzR6E6+0lgWY=
Subject key identifier: 91:26:4A:6E:0A:6B:D5:0E:C9:A5:63:7A:91:F1:7F:0F:5B:2F:4D:F6
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 01898654B9B9C6FA3B19FB81FD4F2D05BF35
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/kSZKbgpr1Q7JpWN6kfF_D1svTfY.roa
Signing time: Mon 24 Jul 2023 05:17:26 +0000
ROA not before: Mon 24 Jul 2023 05:17:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61223
IP address blocks: 89.23.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:86:54:b9:b9:c6:fa:3b:19:fb:81:fd:4f:2d:05:bf:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Jul 24 05:17:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91264a6e0a6bd50ec9a5637a91f17f0f5b2f4df6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:6f:d8:13:c6:a8:2c:8c:e3:48:f2:d7:3d:d8:
fa:27:6e:57:93:9a:b2:45:ca:a8:a9:a7:95:ee:9e:
34:db:25:ce:70:2e:cb:11:71:24:9b:f8:da:54:e6:
d0:11:0c:2b:a4:51:65:65:cb:b2:84:18:39:a8:ed:
71:28:10:ab:e1:e0:2c:7a:92:6b:0f:e2:ab:f0:ce:
4a:d2:3e:b8:25:bc:10:1a:e3:c5:c9:1f:c7:86:a2:
96:37:b1:0c:14:a8:f6:79:23:9a:34:78:1e:f8:54:
bc:39:e8:52:60:e7:e1:56:9f:71:c5:61:19:6a:60:
47:d2:19:4f:d3:26:dd:bb:e6:03:dc:58:11:f6:1f:
bf:63:42:96:74:b6:0f:68:77:80:1a:69:40:1c:da:
a6:35:5e:72:de:55:d7:17:cb:2c:4f:55:26:a7:65:
d6:24:91:0a:cc:e6:de:11:79:bb:88:ca:6a:2a:e1:
db:24:71:21:8b:35:58:9b:f0:61:85:4e:cf:87:f5:
95:dd:7e:e8:66:c9:36:63:4a:4e:3c:81:e7:80:4f:
46:e3:05:24:d1:9f:2b:fe:bf:2a:0e:79:0f:71:02:
66:4b:78:40:03:9f:99:0a:3f:4e:8a:69:2e:75:57:
d7:67:af:b1:e1:6c:3b:58:dc:d1:d0:26:d2:63:11:
17:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:26:4A:6E:0A:6B:D5:0E:C9:A5:63:7A:91:F1:7F:0F:5B:2F:4D:F6
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/kSZKbgpr1Q7JpWN6kfF_D1svTfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.104.0/24
Signature Algorithm: sha256WithRSAEncryption
47:10:0b:a3:17:17:69:39:78:68:ca:db:d9:60:33:87:70:a3:
b8:24:82:7a:34:05:49:3d:40:17:58:88:b2:7f:6f:d1:ac:9d:
90:23:a2:80:9b:46:42:55:aa:c7:8d:b2:f5:9e:3f:4f:ee:a7:
2e:eb:6a:44:de:58:9e:84:5a:cb:21:65:5b:96:15:c5:13:18:
00:1f:ed:64:e1:2a:48:6e:b4:ee:e5:3d:35:1b:69:4c:44:8c:
0b:00:a3:f1:92:32:7f:00:77:20:6d:65:32:43:14:c5:a4:80:
5a:22:5b:cc:bd:71:f9:c8:f9:46:2d:6b:78:4c:91:db:b3:84:
02:58:21:00:76:84:82:73:d6:9d:50:f6:02:e3:d7:e0:1e:27:
69:07:52:ab:f3:b6:ce:e1:1f:db:45:da:f7:c2:f0:e8:9a:0d:
5a:e6:d7:d5:7b:7f:33:6b:0a:ee:77:d3:d6:80:f1:54:bf:64:
55:11:29:57:81:5f:c4:f7:b4:35:bd:e0:8d:47:78:34:d8:fa:
d3:86:43:88:e8:5d:7d:66:95:42:8b:a4:7f:b6:4b:c9:c2:e5:
81:bf:3b:93:80:ce:1d:dc:15:27:9b:ca:8d:90:97:e2:d4:c8:
de:c7:69:cc:74:07:e9:18:cd:47:31:fd:4f:a5:87:17:16:13:
bc:a3:1a:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:33 2024 by rpki-client on console-ams.rpki-client.org